17bd4f9ee5108818e5c898c201d96b87378b38025c8ff7fc70f930a8b4f7cd6f | Triage

Sharing

General

Target

5e6c0813c35c0b5ea47e23a839837860_JaffaCakes118
Size

8KB
Sample

240720-bctblssfnc
MD5

5e6c0813c35c0b5ea47e23a839837860
SHA1

c7f25dfd314634dc3b48de974de60c8374bfa011
SHA256

17bd4f9ee5108818e5c898c201d96b87378b38025c8ff7fc70f930a8b4f7cd6f
SHA512

f4ee93107c2754a3f8f2ced42781455ae74115a906b8dd1facf88791806dba8a35c5bd4287c09d0c5ef7d1dff2d07af1ea06aade903ac0ab97fae2e43680c259
SSDEEP

96:1LwoHPJPVO1FwUVXBrqEMrW+o12MBKEHYSXIJXIJkPoYkXzMDA:aoHP+bqEQSIRIJkwYkXze

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  5e6c0813c35c0b5ea47e23a839837860_JaffaCakes118
- Size
  
  8KB
- MD5
  
  5e6c0813c35c0b5ea47e23a839837860
- SHA1
  
  c7f25dfd314634dc3b48de974de60c8374bfa011
- SHA256
  
  17bd4f9ee5108818e5c898c201d96b87378b38025c8ff7fc70f930a8b4f7cd6f
- SHA512
  
  f4ee93107c2754a3f8f2ced42781455ae74115a906b8dd1facf88791806dba8a35c5bd4287c09d0c5ef7d1dff2d07af1ea06aade903ac0ab97fae2e43680c259
- SSDEEP
  
  96:1LwoHPJPVO1FwUVXBrqEMrW+o12MBKEHYSXIJXIJkPoYkXzMDA:aoHP+bqEQSIRIJkwYkXze
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2